Sunday, April 30, 2006

OpenBSD 3.9 Released

You already ordered your CD, right? And made an even small donation? Be sure to buy a shirt for extra padding for the CD case.

OpenBSD 3.9 has officially been released and is available for download. This is great news for me because not all precompiled packages are on the CDs. Release day means a wget to download the rest of the packages.

We are pleased to announce the official release of OpenBSD 3.9.This is our 19th release on CD-ROM (and 18th via FTP). We remainproud of OpenBSD's record of eight years with only a single remotehole in the default install. As in our previous releases, 3.9provides significant improvements, including new features, in nearlyall areas of the system:

- Improved hardware support, including: o Some G5-based Apple Macintosh machines, including W^X support (currently restricted to 32-bit mode). o Many more audio drivers in the OpenBSD/macppc port. o Support for many system sensors (temperature, voltage, fan speed) via the following subsystems: o Dell's Embedded Server Management (esm) o Intelligent Platform Management Interface (ipmi) o I2C/SMBus sensor subsystems found on most motherboards (iic) o Touchpad on recent Apple laptops (tpms). o nfe, a binary blob free driver for the NVIDIA nForce Ethernet interface. o Opteron systems now have all their PCI buses detected. o CardBus and PCMCIA support on OpenBSD/amd64. o ixgb, Intel PRO/10GbE Ethernet. o Support for new Intel i82571, i82572 and i82573 PCI Express based devices in the em(4) driver. o Support for new Broadcom BCM5714, BCM5715 and BCM5903M based devices in the bge(4) driver. o Support for new Ralink RT2501 and RT2600 based devices in ral. o Support for ASIX AX88178 Gigabit and AX88772 10/100 based devices in axe(4). o Support for devices incorporating GCT RF transceivers in rtw. o Zaurus remote control (zrc) support. o Initial Sound Blaster Audigy support in the emu(4) driver. o The Level 1 LXT1001 Gigabit driver has been fixed and now works (lge(4)). o More HP Smart ARRAY controllers recognized by the ciss(4) driver. o Support the Intel i915 AGP. o Support for both older and newer IDE and SATA controllers in the pciide(4) driver, including: o ATI's IXP 200/300/400 IDE controllers o Broadcom's ServerWorks HT-1000 IDE controller o a few older Intel PIIX IDE controllers o Broadcom's ServerWorks K2 and HT-1000 SATA controllers o VIA's VT6410 and VT8251 SATA controllers o some newer NVIDIA SATA controllers o Added IBSS support to the iwi(4) driver. o Added bus_dma support to the de(4) and san(4) drivers. o A lot of fixes and improvements to the uaudio(4) audio driver. o Support for the SMC SMC91C1xx Ethernet chips in the sm(4) driver as well as MII support. o New adb(4) and framebuffer (macfb(4)) drivers on OpenBSD/mac68k, plus switch to wscons(4).

- New tools: o ftp-proxy(8) has been rewritten, and a tftp version, tftp-proxy, has been added. o sdiff(1), a side-by-side file comparison tool, rewritten by us. o getent(1), a tool to get entries from the administrative databases.

- New functionality: o ancontrol functionality has been completely merged into ifconfig. o apmd(8) can be used to increase or decrease CPU speed automatically, depending on CPU usage and, if supported, battery status. o nc(1) now supports HTTP Proxy authentication, making it very useful as a ssh ProxyCommand. o Userland ppp(8) has IPv6 support. o A number of fixes and new functionality for trunk(4): o New active/passive failover mode o Fixed multicast support, for carp(4) and pfsync(4) over trunk interfaces. o Interface capabilities depending on the trunk ports, for full-size vlan(4) MTUs. o Improved functionality for ipsecctl(8). o Added multicast routing to GENERIC. It is now possible to enable multicast routing in the kernel with the sysctl(8) option net.inet.ip.mforwarding=1. o It is now possible to set a default vlan(4) priority via ifconfig(8).

- Assorted improvements and code cleanup: o libpcap has been updated with most of tcpdump.org's libpcap-0.9.4 API, without the clutter. o System libraries on most architectures are now compiled with debugging symbols, which makes tools like gdb(1) much more useable. o Header files have been rewritten to provide better C99 support. o Linted versions of system libraries are now provided and lint(1) has been substantially overhauled to produce less false positives and find new classes of problems. o The ieee80211(9) wireless framework has been cleaned up and changed to use red-black tree(3)s instead of hash tables. o The complete source tree has been audited for wrong usage of the queue(3) macros and facilities have been added to detect misuse. o The mg(1) editor now includes an editable minibuffer, vastly improved undo, completion buffers, and many other emacs-like improvements.

- New functionality for hostapd(8), the Host Access Point Daemon: o Support for multiple wireless interfaces and per-interface event rules. o New rate keyword for event rules, a requirement for using hostapd as a WIDS. o Replaced hash tables with safer red-black tree(3)s. o Improved multicast support and configuration options. o Various bug fixes and improvements.

- OpenSSH 4.3: o Generate protocol 2 RSA keys in ssh-keygen by default. o Support for tunneling arbitrary network packets over a connection between an OpenSSH client and server, as a true VPN. o Many additional bug fixes, as described in the release announcement.

- OpenBGPD 3.9: o Support for inbound and outbound soft reconfiguration. o Added possibility to remove communities. o Added new special community value "neighbor-as" which is expanded to the remote-AS of the current neighbor. o Support for a unprivileged bgpctl socket added, which can be used for looking glass style applications. o Even better IPv6 support.

- OpenOSPFD 3.9: o Neighbor Finite State Machine has been greatly improved. o Network redistribution has been reworked. o CARP interfaces and their behaviour is now respected. o LSA Retransmission has been greatly improved. o Each area is now calculated individually when needed. o OSPF packet reception performance has been improved. o Neighbor uptimes are now displayed with "ospfctl show neighbor". o RIB uptimes are now displayed with "ospfctl show rib".